查看: 2872|回复: 14
收起左侧

[病毒样本] nod32扫到19个

[复制链接]
The EQs
发表于 2007-4-1 09:44:26 | 显示全部楼层 |阅读模式
Scan performed at: 2007-4-1 9:20:08
Scanning Log
NOD32 version 2160 (20070331) NT
Command line: C:\Documents and Settings\EQ2\桌面\样本2 C:\Documents and Settings\EQ2\桌面\system32
Operating memory - is OK
Date: 1.4.2007  Time: 09:20:12
Anti-Stealth technology is enabled.
Scanned disks, folders and files: C:\Documents and Settings\EQ2\桌面\样本2\; C:\Documents and Settings\EQ2\桌面\system32\
C:\Documents and Settings\EQ2\桌面\样本2\c0nime.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\crasos.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\Gjzo0.dll - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\iexpl0re.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\LgSy0.dll - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\LgSy1.dll - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\Rav20.dll - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\rundl132.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\upxdnd.dll - a variant of Win32/PSW.Agent.NDF trojan
C:\Documents and Settings\EQ2\桌面\样本2\winlog0n.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\样本2\__delete_on_reboot__M_s_x_o_0_._d_l_l_ - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\1.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\2.exe - a variant of Win32/PSW.Agent.NDF trojan
C:\Documents and Settings\EQ2\桌面\system32\3.exe - a variant of Win32/PSW.Agent.NCC trojan
C:\Documents and Settings\EQ2\桌面\system32\4.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\5.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\6.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\7.exe - a variant of Win32/PSW.Agent.NDP trojan
C:\Documents and Settings\EQ2\桌面\system32\sysload3.exe - probably unknown NewHeur_PE virus [7]
Number of scanned files: 21
Number of threats found: 19
Number of files cleaned: 19
Time of completion: 09:20:13 Total scanning time: 1 sec (00:00:01)
Notes:
[7] File is probably infected with an unknown virus.

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
mofunzone
发表于 2007-4-1 09:46:22 | 显示全部楼层
Starting the file scan:

Begin scan in 'C:\Documents and Settings\morgan\My Documents\system32.rar'
C:\Documents and Settings\morgan\My Documents\
  system32.rar
    [0] Archive type: RAR
    --> system32\1.exe
        [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.KW.79
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\2.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\3.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\4.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\5.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\6.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\7.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\config.ini
    --> system32\sysload3.exe
        [DETECTION] Is the Trojan horse TR/Hijack.Explor.2490
        [WARNING]   Infected files in archives cannot be repaired!
    --> system32\wpa.dbl
        [WARNING]   The file was ignored!
Begin scan in 'C:\Documents and Settings\morgan\My Documents\��2.rar'
C:\Documents and Settings\morgan\My Documents\
  ��2.rar
    [0] Archive type: RAR
    --> Ñù±¾2\c0nime.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\crasos.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\Gjzo0.dll
    --> Ñù±¾2\iexpl0re.exe
        [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.KW.79
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\LgSy0.dll
        [DETECTION] Is the Trojan horse TR/Dldr.Agent.OL.1
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\LgSy1.dll
    --> Ñù±¾2\Rav20.dll
        [DETECTION] File has been compressed with an unusual runtime compression tool (PCK/UPACK). Please verify the origin of the file
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\rundl132.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\upxdnd.dll
    --> Ñù±¾2\winlog0n.exe
        [DETECTION] Contains suspicious code HEUR/Malware
        [WARNING]   Infected files in archives cannot be repaired!
    --> Ñù±¾2\__delete_on_reboot__M_s_x_o_0_._d_l_l_
        [DETECTION] Is the Trojan horse TR/PSW.OnLineGames.KW.70
        [WARNING]   Infected files in archives cannot be repaired!
        [WARNING]   The file was ignored!


End of the scan: 2007年3月31日  18:46
Used time: 00:12 min

The scan has been done completely.

      0 Scanning directories
     23 Files were scanned
     16 viruses and/or unwanted programs were found
      0 files were deleted
      0 files were repaired
      0 files were moved to quarantine
      0 files were renamed
      0 Files cannot be scanned
      7 Files not concerned
      2 Archives were scanned
     18 Warnings
      0 Notes
马力
发表于 2007-4-1 11:31:27 | 显示全部楼层
驱逐舰

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
KAV-Longhorn
发表于 2007-4-1 12:13:53 | 显示全部楼层
红伞杀16个.
zzh161
发表于 2007-4-1 12:48:48 | 显示全部楼层
NIS

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
jlennon
头像被屏蔽
发表于 2007-4-1 12:56:29 | 显示全部楼层
LS ,你这样贴,谁知道几个啊
jlennon
头像被屏蔽
发表于 2007-4-1 12:58:27 | 显示全部楼层

本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?快速注册

x
xffsfy
发表于 2007-4-1 13:07:58 | 显示全部楼层
费尔杀了3,启发2.....郁闷
蓝色牛仔裤
发表于 2007-4-1 13:09:42 | 显示全部楼层
beta蜘蛛14个..

system32.rar\system32\1.exe;D:\system32.rar;Trojan.PWS.Wsgame;;
system32.rar\system32\2.exe;D:\system32.rar;Trojan.PWS.Wsgame;;
system32.rar\system32\3.exe;D:\system32.rar;Trojan.PWS.Gamania;;
system32.rar\system32\4.exe;D:\system32.rar;Trojan.PWS.Wsgame;;
system32.rar\system32\5.exe;D:\system32.rar;Trojan.PWS.Wsgame;;
system32.rar\system32\7.exe;D:\system32.rar;Trojan.PWS.Wsgame;;
system32.rar\system32\sysload3.exe;D:\system32.rar;Probably DLOADER.Trojan;;
system32.rar;D:\;Archive contains infected objects;;
样本2.rar\样本2\c0nime.exe;D:\样本2.rar;Trojan.PWS.Wsgame;;
样本2.rar\样本2\crasos.exe;D:\样本2.rar;Trojan.PWS.Wsgame;;
样本2.rar\样本2\Gjzo0.dll;D:\样本2.rar;Trojan.PWS.Gamania.origin;;
样本2.rar\样本2\iexpl0re.exe;D:\样本2.rar;Trojan.PWS.Wsgame;;
样本2.rar\样本2\LgSy1.dll;D:\样本2.rar;Trojan.PWS.Gamania.origin;;
样本2.rar\样本2\upxdnd.dll;D:\样本2.rar;Trojan.PWS.Wsgame;;
样本2.rar\样本2\winlog0n.exe;D:\样本2.rar;Trojan.PWS.Wsgame;;
样本2.rar;D:\;Archive contains infected objects;;
Kakura
发表于 2007-4-1 13:12:54 | 显示全部楼层
Result: 14 malware found
Trojan-PSW.Win32.OnLineGames.kw (virus)
  • F:\system32.rar\system32\1.exe
  • F:\system32.rar\system32\4.exe
  • F:\system32.rar\system32\5.exe
  • F:\system32.rar\system32\7.exe
  • F:\样本2.rar\样本2\c0nime.exe
  • F:\样本2.rar\样本2\crasos.exe
  • F:\样本2.rar\样本2\iexpl0re.exe
  • F:\样本2.rar\样本2\LgSy1.dll
  • F:\样本2.rar\样本2\winlog0n.exe
  • F:\样本2.rar\样本2\__delete_on_reboot__M_s_x_o_0_._d_l_l_
Trojan-PSW.Win32.OnLineGames.es (virus)
  • F:\system32.rar\system32\2.exe
Trojan-PSW.Win32.OnLineGames.lc (virus)
  • F:\system32.rar\system32\3.exe
Trojan-Downloader.Win32.Agent.bkp (virus)
  • F:\system32.rar\system32\sysload3.exe
Trojan-PSW.Win32.OnLineGames.ky (virus)
  • F:\样本2.rar\样本2\LgSy0.dll
您需要登录后才可以回帖 登录 | 快速注册

本版积分规则

手机版|杀毒软件|软件论坛| 卡饭论坛

Copyright © KaFan  KaFan.cn All Rights Reserved.

Powered by Discuz! X3.4( 沪ICP备2020031077号-2 ) GMT+8, 2024-3-29 02:12 , Processed in 0.116627 second(s), 18 queries .

卡饭网所发布的一切软件、样本、工具、文章等仅限用于学习和研究,不得将上述内容用于商业或者其他非法用途,否则产生的一切后果自负,本站信息来自网络,版权争议问题与本站无关,您必须在下载后的24小时之内从您的电脑中彻底删除上述信息,如有问题请通过邮件与我们联系。

快速回复 客服 返回顶部 返回列表